PT-2025-46761 · Linux+3 · Linux Kernel+3

Published

2025-08-18

·

Updated

2026-05-07

·

CVE-2025-40204

CVSS v2.0

4.6

Medium

VectorAV:A/AC:H/Au:N/C:C/I:N/A:N
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A flaw exists in the Linux kernel’s SCTP implementation related to Message Authentication Code (MAC) comparison. The MAC comparison was not performed in constant time, potentially allowing for timing attacks. To address this, the MAC comparison was corrected to be constant-time by utilizing an appropriate helper function.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Weakness Enumeration

CWE-208

Related Identifiers

AZL-70112
BDU:2025-14663
CVE-2025-40204
DLA-4379-1
DLA-4404-1
OESA-2025-2765
OESA-2025-2766
OESA-2025-2767
OPENSUSE-SU-2025:20172-1
SUSE-SU-2025:4393-1
SUSE-SU-2025:4422-1
SUSE-SU-2025:4505-1
SUSE-SU-2025:4506-1
SUSE-SU-2025:4515-1
SUSE-SU-2025:4516-1
SUSE-SU-2025:4517-1
SUSE-SU-2025:4521-1
SUSE-SU-2025:4530-1
SUSE-SU-2026:0029-1
SUSE-SU-2026:0032-1
SUSE-SU-2026:0033-1
SUSE-SU-2026:0034-1
SUSE-SU-2026:0144-1
SUSE-SU-2026:0145-1
SUSE-SU-2026:0146-1
SUSE-SU-2026:0147-1
SUSE-SU-2026:0148-1
SUSE-SU-2026:0154-1
SUSE-SU-2026:0155-1
SUSE-SU-2026:0163-1
SUSE-SU-2026:0166-1
SUSE-SU-2026:0168-1
SUSE-SU-2026:0169-1
SUSE-SU-2026:0171-1
SUSE-SU-2026:0173-1
SUSE-SU-2026:0174-1
SUSE-SU-2026:0176-1
SUSE-SU-2026:0180-1
SUSE-SU-2026:0184-1
SUSE-SU-2026:0185-1
SUSE-SU-2026:0186-1
SUSE-SU-2026:0187-1
SUSE-SU-2026:0188-1
SUSE-SU-2026:0191-1
SUSE-SU-2026:0200-1
SUSE-SU-2026:0202-1
SUSE-SU-2026:0203-1
SUSE-SU-2026:0204-1
SUSE-SU-2026:0206-1
SUSE-SU-2026:0209-1
SUSE-SU-2026:0246-1
SUSE-SU-2026:0247-1
SUSE-SU-2026:0262-1
SUSE-SU-2026:0269-1
SUSE-SU-2026:0270-1
SUSE-SU-2026:0274-1
SUSE-SU-2026:0283-1
SUSE-SU-2026:0284-1
SUSE-SU-2026:20012-1
SUSE-SU-2026:20015-1
SUSE-SU-2026:20021-1
SUSE-SU-2026:20039-1
SUSE-SU-2026:20059-1
SUSE-SU-2026:20149-1
SUSE-SU-2026:20164-1
SUSE-SU-2026:20168-1
SUSE-SU-2026:20169-1
SUSE-SU-2026:20171-1
SUSE-SU-2026:20202-1
SUSE-SU-2026:20248-1
SUSE-SU-2026:20249-1
SUSE-SU-2026:20250-1
SUSE-SU-2026:20251-1
SUSE-SU-2026:20252-1
SUSE-SU-2026:20253-1
SUSE-SU-2026:20254-1
SUSE-SU-2026:20255-1
SUSE-SU-2026:20256-1
SUSE-SU-2026:20257-1
SUSE-SU-2026:20258-1
SUSE-SU-2026:20259-1
SUSE-SU-2026:20260-1
SUSE-SU-2026:20261-1
SUSE-SU-2026:20262-1
SUSE-SU-2026:20263-1
SUSE-SU-2026:20264-1
SUSE-SU-2026:20265-1
SUSE-SU-2026:20266-1
SUSE-SU-2026:20376-1
SUSE-SU-2026:20377-1
SUSE-SU-2026:20378-1
SUSE-SU-2026:20379-1
SUSE-SU-2026:20380-1
SUSE-SU-2026:20381-1
SUSE-SU-2026:20382-1
SUSE-SU-2026:20383-1
SUSE-SU-2026:20384-1
SUSE-SU-2026:20385-1
SUSE-SU-2026:20392-1
SUSE-SU-2026:20393-1
SUSE-SU-2026:20394-1
SUSE-SU-2026:20395-1
SUSE-SU-2026:20396-1
SUSE-SU-2026:20397-1
SUSE-SU-2026:20398-1
SUSE-SU-2026:20399-1
SUSE-SU-2026:20400-1
SUSE-SU-2026:20473-1
SUSE-SU-2026:20496-1
USN-8029-1
USN-8029-2
USN-8029-3
USN-8030-1
USN-8033-1
USN-8033-2
USN-8033-3
USN-8033-4
USN-8033-5
USN-8033-6
USN-8033-7
USN-8033-8
USN-8034-1
USN-8034-2
USN-8048-1
USN-8095-1
USN-8095-2
USN-8095-3
USN-8095-4
USN-8095-5
USN-8100-1
USN-8125-1
USN-8126-1
USN-8141-1
USN-8163-1
USN-8163-2
USN-8165-1
USN-8243-1
USN-8261-1

Affected Products

Debian
Linuxmint
Linux Kernel
Ubuntu